Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2018-25364 |
|
SQL Injection in sqli (CVE-2018-25364)
SQL injection in sqli (CVE-2018-25364). Confidential information can be exposed externally.
|
| CVE-2026-9451 |
|
Vulnerability in sqli (CVE-2026-9451)
vulnerability in sqli (CVE-2026-9451). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9449 |
|
Vulnerability in sqli (CVE-2026-9449)
vulnerability in sqli (CVE-2026-9449). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9450 |
|
Vulnerability in sqli (CVE-2026-9450)
vulnerability in sqli (CVE-2026-9450). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9446 |
|
Vulnerability in sqli (CVE-2026-9446)
vulnerability in sqli (CVE-2026-9446). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9444 |
|
Vulnerability in sqli (CVE-2026-9444)
vulnerability in sqli (CVE-2026-9444). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9447 |
|
Vulnerability in sqli (CVE-2026-9447)
vulnerability in sqli (CVE-2026-9447). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9411 |
|
Vulnerability in sqli (CVE-2026-9411)
vulnerability in sqli (CVE-2026-9411). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9383 |
|
Vulnerability in sqli (CVE-2026-9383)
vulnerability in sqli (CVE-2026-9383). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9364 |
|
Vulnerability in sqli (CVE-2026-9364)
vulnerability in sqli (CVE-2026-9364). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9356 |
|
Vulnerability in sqli (CVE-2026-9356)
vulnerability in sqli (CVE-2026-9356). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9355 |
|
Vulnerability in sqli (CVE-2026-9355)
vulnerability in sqli (CVE-2026-9355). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9342 |
|
Vulnerability in sqli (CVE-2026-9342)
vulnerability in sqli (CVE-2026-9342). Risk of unauthorized operations or information disclosure.
|
| CVE-2018-25347 |
|
SQL Injection in wordpress (CVE-2018-25347)
SQL injection in wordpress (CVE-2018-25347). Confidential information can be exposed externally.
|
| CVE-2018-25348 |
|
SQL Injection in sqli (CVE-2018-25348)
SQL injection in sqli (CVE-2018-25348). Confidential information can be exposed externally.
|
| CVE-2018-25351 |
|
SQL Injection in sqli (CVE-2018-25351)
SQL injection in sqli (CVE-2018-25351). Confidential information can be exposed externally.
|
| CVE-2018-25352 |
|
SQL Injection in wordpress (CVE-2018-25352)
SQL injection in wordpress (CVE-2018-25352). Confidential information can be exposed externally.
|
| CVE-2018-25346 |
|
SQL Injection in wordpress (CVE-2018-25346)
SQL injection in wordpress (CVE-2018-25346). Confidential information can be exposed externally.
|
| CVE-2018-25340 |
|
SQL Injection in sqli (CVE-2018-25340)
SQL injection in sqli (CVE-2018-25340). Confidential information can be exposed externally.
|
| CVE-2026-9305 |
|
Vulnerability in sqli (CVE-2026-9305)
vulnerability in sqli (CVE-2026-9305). Risk of unauthorized operations or information disclosure.
|
| CVE-2018-25342 |
|
SQL Injection in sqli (CVE-2018-25342)
SQL injection in sqli (CVE-2018-25342). Confidential information can be exposed externally.
|
| CVE-2018-25341 |
|
SQL Injection in sqli (CVE-2018-25341)
SQL injection in sqli (CVE-2018-25341). Confidential information can be exposed externally.
|
| CVE-2026-41075 |
|
SQL Injection in sqli (CVE-2026-41075)
SQL injection in sqli (CVE-2026-41075). Successful exploitation can lead to full system takeover.
|
| CVE-2026-25606 |
|
SQL Injection in sqli (CVE-2026-25606)
SQL injection in sqli (CVE-2026-25606). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4834 |
|
SQL Injection in wordpress (CVE-2026-4834)
SQL injection in wordpress (CVE-2026-4834). Confidential information can be exposed externally.
|
| CVE-2026-48238 |
|
SQL Injection in sqli (CVE-2026-48238)
SQL injection in sqli (CVE-2026-48238). Confidential information can be exposed externally.
|
| CVE-2026-48235 |
|
SQL Injection in sqli (CVE-2026-48235)
SQL injection in sqli (CVE-2026-48235). Confidential information can be exposed externally.
|
| CVE-2026-48240 |
|
SQL Injection in sqli (CVE-2026-48240)
SQL injection in sqli (CVE-2026-48240). Confidential information can be exposed externally.
|
| CVE-2026-48239 |
|
SQL Injection in sqli (CVE-2026-48239)
SQL injection in sqli (CVE-2026-48239). Confidential information can be exposed externally.
|
| CVE-2026-48236 |
|
SQL Injection in sqli (CVE-2026-48236)
SQL injection in sqli (CVE-2026-48236). Confidential information can be exposed externally.
|
| CVE-2026-48237 |
|
SQL Injection in sqli (CVE-2026-48237)
SQL injection in sqli (CVE-2026-48237). Confidential information can be exposed externally.
|
| CVE-2026-48232 |
|
SQL Injection in sqli (CVE-2026-48232)
SQL injection in sqli (CVE-2026-48232). Confidential information can be exposed externally.
|
| CVE-2026-48234 |
|
SQL Injection in sqli (CVE-2026-48234)
SQL injection in sqli (CVE-2026-48234). Confidential information can be exposed externally.
|
| CVE-2026-48233 |
|
SQL Injection in sqli (CVE-2026-48233)
SQL injection in sqli (CVE-2026-48233). Confidential information can be exposed externally.
|
| CVE-2026-48231 |
|
SQL Injection in sqli (CVE-2026-48231)
SQL injection in sqli (CVE-2026-48231). Confidential information can be exposed externally.
|
| CVE-2026-39531 |
|
SQL Injection in sqli (CVE-2026-39531)
SQL injection in sqli (CVE-2026-39531). Confidential information can be exposed externally.
|
| CVE-2026-44047 |
|
SQL Injection in sqli (CVE-2026-44047)
SQL injection in sqli (CVE-2026-44047). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9082 KEV |
|
[KEV] SQL Injection in drupal/core (CVE-2026-9082)
SQL injection in drupal/core (CVE-2026-9082). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited. Mitigation: upgrade to `10.4.10, 10.5.10, 10.6.9, 11.1.10, 11.2.12, 11.3.10` or later.
|
| CVE-2026-44923 |
|
SQL injection in InfoScale VIOM before v9.1.3 allows remote attackers to escalate privileges.
SQL injection in InfoScale VIOM before v9.1.3 allows remote attackers to escalate privileges.
|
| CVE-2026-42383 |
|
SQL Injection in sqli (CVE-2026-42383)
SQL injection in sqli (CVE-2026-42383). Confidential information can be exposed externally.
|
| CVE-2026-9059 |
|
SQL Injection in sqli (CVE-2026-9059)
SQL injection in sqli (CVE-2026-9059). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9065 |
|
SQL Injection in wordpress (CVE-2026-9065)
SQL injection in wordpress (CVE-2026-9065). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9010 |
|
SQL Injection in wordpress (CVE-2026-9010)
SQL injection in wordpress (CVE-2026-9010). Confidential information can be exposed externally.
|
| CVE-2026-9003 |
|
SQL Injection in sqli (CVE-2026-9003)
SQL injection in sqli (CVE-2026-9003). Confidential information can be exposed externally.
|
| CVE-2026-8685 |
|
SQL Injection in wordpress (CVE-2026-8685)
SQL injection in wordpress (CVE-2026-8685). Confidential information can be exposed externally.
|
| CVE-2026-7472 |
|
SQL Injection in wordpress (CVE-2026-7472)
SQL injection in wordpress (CVE-2026-7472). Confidential information can be exposed externally.
|
| CVE-2026-3985 |
|
SQL Injection in wordpress (CVE-2026-3985)
SQL injection in wordpress (CVE-2026-3985). Confidential information can be exposed externally.
|
| CVE-2026-31069 |
|
SQL Injection in billabear/billabear (CVE-2026-31069)
SQL injection in billabear/billabear (CVE-2026-31069). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8912 |
|
SQL Injection in wordpress (CVE-2026-8912)
SQL injection in wordpress (CVE-2026-8912). Confidential information can be exposed externally.
|
| CVE-2026-8827 |
|
SQL Injection in friendsoftypo3/tt-address (CVE-2026-8827)
SQL injection in friendsoftypo3/tt-address (CVE-2026-8827). Risk of unauthorized operations or information disclosure. Exploitable via ``tt_address``. Mitigation: upgrade to `8.1.2` or later.
|